PyDFIR / pyDFIRRamLinks
PyDFIRRam is a Python library leveraging Volatility 3 to simplify and enhance memory forensics. It streamlines the research, parsing, and analysis of memory dumps, allowing users to focus on data rather than commands.
☆25Updated 8 months ago
Alternatives and similar repositories for pyDFIRRam
Users that are interested in pyDFIRRam are comparing it to the libraries listed below
Sorting:
- Powershell Linter☆53Updated last month
- orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them☆33Updated last month
- ☆23Updated 3 months ago
- APT hub, It help's research to collect information and data on the latest APT activities. It collects data on APT profiles, IOCs(1 yr), a…☆51Updated 2 months ago
- ZeroProbe is an advanced enumeration and analysis framework designed for exploit developers, security researchers, and red teamers. It pr…☆103Updated 2 months ago
- Scan files for potential threats while leveraging AMSI (Antimalware Scan Interface) and Windows Defender. By isolating malicious content.☆17Updated 5 months ago
- Shellcode loader based on indirect syscall☆22Updated 3 months ago
- ☆20Updated last year
- ☆99Updated last month
- Memory mapping profiles for forensic analysis using volatility 2☆47Updated 2 years ago
- ☆63Updated this week
- ☆68Updated 4 months ago
- ☆55Updated 7 months ago
- C++ Reflective Assembly Loader☆25Updated 2 months ago
- Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on☆82Updated last year
- GeoWordlists is a tool to generate wordlists of passwords containing cities at a defined distance around the client city.☆148Updated 3 months ago
- ☆141Updated 9 months ago
- This repository contains a comprehensive testing designed for evaluating the performance and resilience of Endpoint Detection and Respons…☆54Updated 7 months ago
- A fully-undetectable ransomware that utilizes OneDrive & Google Drive to encrypt target local files☆124Updated last year
- Lena's scripts/code/resources for malware analysis☆27Updated 11 months ago
- These FLARE-VM configuration files are designed to be help setup a purpose-built installation, remove unnecessary packages to help stream…☆14Updated last year
- ELFEN: Automated Linux Malware Analysis Sandbox☆125Updated 10 months ago
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆52Updated 6 months ago
- Modular framework for automating triaging, malware analysis, and analyst workflows☆39Updated last month
- This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.☆79Updated 9 months ago
- Bash Script to extract GNU/Linux forensic artifacts for digital forensic analysis and incident response.☆43Updated last year
- DFIR project to collect and analyze events in Google Workspace☆12Updated last year
- Persist like a Dodder☆61Updated 2 weeks ago
- A python script to automatically list vulnerable Windows ACEs/ACLs.☆54Updated 5 months ago
- Artifact monitoring that ensures fairplay☆75Updated 4 months ago